close ad
 
Important WebAssist Announcement
open ad
View Menu

Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

rating

Security Assist

Thread begun 7/07/2010 12:52 pm by ljh042258121730 | Last modified 7/13/2010 2:28 pm by Eric Mittman | 6370 views | 9 replies |

ljh042258121730

Security Assist

I have installed Security Assist onto my computer, I have defined a page within Dreamweaver. I have also setup a database on Godaddy.com with a table. When I test within the Wizard I get MySql Error #: 2013 -- Lost connection to MySql server at 'reading initial communication packet', system error: 111

Also once I have installed Security Assist onto my computer are there any files I need to move over to my remote server, which ones and where?
To update you, I have went back to ground zero. So my computer only is in the initial install state. So is there a complete setup doc somewhere for setting up using a remote server such as Godaddy.com? I am currently searching your site for a step by step process of this. You help would be greatly appreciated in helping me move forward so that I would be able to test and work with your product.

Please help.
Larry

Sign in to reply to this post

Eric Mittman

Most hosts will not allow remote access to the db. Due to this you will need to setup a local testing sever and configure your DW site to work with the local info. We have a couple of docs on this that can be found on the support page under Dynamic Development Tutorials. Once you have your testing server setup and the site defined in DW you will be able to develop and test locally.

support/

When you go live with it you will need to copy over all of the files in your local DW site to the server, and export your local db and import it into your live db.

Sign in to reply to this post

ljh042258121730

Security Assist

Eric,

Thanks and if you have 5 mins could you call me, so that I can make sure I'm on the right path thanks. And have a blessed day.

Larry
// number removed for privacy reasons

Sign in to reply to this post

Eric Mittman

Our support process it to try and resolve the issues through the public forum if at all possible so that others can benefit from the information. If we need to exchange details or pages in private I can open a ticket for you on this issue.

What are the current issues or errors you are experiencing? Were you able to get a local testing server setup and your DW site defined?

Sign in to reply to this post

ljh042258121730

Security Assist

Yes, but when I test the login page , it does not go to the profile page once it is submitted. I checked the code and the redirect is to the profile page

Sign in to reply to this post

Eric Mittman

What is in the URL after you try to login? Are you taken to any page or do you stay on the login page? If you have been denied access to a page you should see an access check variable in the URL.

If you are entering the username and password correctly and cannot login there might be an issue with the values you are entering or how they are stored in the db. Can you check your table in the db to confirm that you have a record for the user you are trying to login with? Also, are you storing the password in the db encrypted? If so you will need to ensure that you have the password column in your table set with a varchar of at least 40 in size to hold the entire password.

Sign in to reply to this post

ljh042258121730

Security Assist

Once again thanks for you help, I really do appreciate it. When I test the register page in my browser, all the input goes into my local database. Then it redirects me to a login page. When I use the username and password to login, it sends me to the email page, instead of the profile page. I also checked the password on the local sever and it is there, but it is not encrypted. Here is the code on the register page:

<?php
// *** Redirect if username exists
$MM_flag="MM_insert";
if (isset($_POST[$MM_flag])) {
$MM_dupKeyRedirect="";
$loginUsername = $_POST['RegID'];
$LoginRS__query = "SELECT RegID FROM registrants WHERE RegID='" . $loginUsername . "'";
mysql_select_db($database_NICOFTIME, $NICOFTIME);
$LoginRS=mysql_query($LoginRS__query, $NICOFTIME) or die(mysql_error());
$loginFoundUser = mysql_num_rows($LoginRS);

//if there is a row in the database, the username was found - can not add the requested username
if($loginFoundUser){
$MM_qsChar = "?";
//append the username to the redirect page
if (substr_count($MM_dupKeyRedirect,"?") >=1) $MM_qsChar = "&";
$MM_dupKeyRedirect = $MM_dupKeyRedirect . $MM_qsChar ."requsername=".$loginUsername;
header ("Location: $MM_dupKeyRedirect");
exit;
}
}
?>
<?php
$editFormAction = $_SERVER['PHP_SELF'];
if (isset($_SERVER['QUERY_STRING'])) {
$editFormAction .= "?" . htmlentities($_SERVER['QUERY_STRING']);
}

?>
<?php
if ((isset($_POST["MM_insert"])) && ($_POST["MM_insert"] == "WAATKRegistrationForm")) {
$insertSQL = sprintf("INSERT INTO registrants (RegUserName, RegPassword, RegFirstName, RegLastName, RegTitle, RegCompanyName, RegBillingAddress1, RegBillingAddress2, RegCity, RegState, RegZip, RegCountry, RegPhone, RegExtension, RegFax, RegEmail, RegNotes) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)",
GetSQLValueString($_POST['RegUserName'], "text"), GetSQLValueString($_POST['RegPassword'], "text"), GetSQLValueString($_POST['RegFirstName'], "text"), GetSQLValueString($_POST['RegLastName'], "text"), GetSQLValueString($_POST['RegTitle'], "text"), GetSQLValueString($_POST['RegCompanyName'], "text"), GetSQLValueString($_POST['RegBillingAddress1'], "text"), GetSQLValueString($_POST['RegBillingAddress2'], "text"), GetSQLValueString($_POST['RegCity'], "text"), GetSQLValueString($_POST['RegState'], "text"), GetSQLValueString($_POST['RegZip'], "text"), GetSQLValueString($_POST['RegCountry'], "text"), GetSQLValueString($_POST['RegPhone'], "text"), GetSQLValueString($_POST['RegExtension'], "text"), GetSQLValueString($_POST['RegFax'], "text"), GetSQLValueString($_POST['RegEmail'], "text"), GetSQLValueString($_POST['RegNotes'], "text"));

mysql_select_db($database_NICOFTIME, $NICOFTIME);
$Result1 = mysql_query($insertSQL, $NICOFTIME) or die(mysql_error());

$insertGoTo = "registrants_LogIn.php";
if (isset($_SERVER['QUERY_STRING'])) {
$insertGoTo .= (strpos($insertGoTo, '?')) ? "&" : "?";
$insertGoTo .= $_SERVER['QUERY_STRING'];
}
header(sprintf("Location: %s", $insertGoTo));
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<title>Registration</title>
<link href="WA_SecurityAssist/styles/Refined_Pacifica.css" rel="stylesheet" type="text/css" />
<link href="WA_SecurityAssist/styles/Tahoma.css" rel="stylesheet" type="text/css" />
</head>

<body>

<div id="RegistrationContainer" class="WAATK">
<form action="<?php echo $editFormAction; ?>" method="post" name="WAATKRegistrationForm" id="WAATKRegistrationForm">
<h1>Registration</h1>
<table class="WAATKDataTable" cellpadding="0" cellspacing="0" border="0">
<tr>
<th>RegUserName:</th>
<td><input type="text" class="WAATKTextField" name="RegUserName" id="RegUserName" value="" size="32" /></td>
</tr>
<tr>
<th>RegPassword:</th>
<td><input type="text" class="WAATKTextField" name="RegPassword" id="RegPassword" value="" size="32" /></td>
</tr>
<tr>
<th>RegFirstName:</th>
<td><input type="text" class="WAATKTextField" name="RegFirstName" id="RegFirstName" value="" size="32" /></td>
</tr>
<tr>
<th>RegLastName:</th>
<td><input type="text" class="WAATKTextField" name="RegLastName" id="RegLastName" value="" size="32" /></td>
</tr>
<tr>
<th>RegTitle:</th>
<td><input type="text" class="WAATKTextField" name="RegTitle" id="RegTitle" value="" size="32" /></td>
</tr>
<tr>
<th>RegCompanyName:</th>
<td><input type="text" class="WAATKTextField" name="RegCompanyName" id="RegCompanyName" value="" size="32" /></td>
</tr>
<tr>
<th>RegBillingAddress1:</th>
<td><input type="text" class="WAATKTextField" name="RegBillingAddress1" id="RegBillingAddress1" value="" size="32" /></td>
</tr>
<tr>
<th>RegBillingAddress2:</th>
<td><input type="text" class="WAATKTextField" name="RegBillingAddress2" id="RegBillingAddress2" value="" size="32" /></td>
</tr>
<tr>
<th>RegCity:</th>
<td><input type="text" class="WAATKTextField" name="RegCity" id="RegCity" value="" size="32" /></td>
</tr>
<tr>
<th>RegState:</th>
<td><input type="text" class="WAATKTextField" name="RegState" id="RegState" value="" size="32" /></td>
</tr>
<tr>
<th>RegZip:</th>
<td><input type="text" class="WAATKTextField" name="RegZip" id="RegZip" value="" size="32" /></td>
</tr>
<tr>
<th>RegCountry:</th>
<td><input type="text" class="WAATKTextField" name="RegCountry" id="RegCountry" value="" size="32" /></td>
</tr>
<tr>
<th>RegPhone:</th>
<td><input type="text" class="WAATKTextField" name="RegPhone" id="RegPhone" value="" size="32" /></td>
</tr>
<tr>
<th>RegExtension:</th>
<td><input type="text" class="WAATKTextField" name="RegExtension" id="RegExtension" value="" size="32" /></td>
</tr>
<tr>
<th>RegFax:</th>
<td><input type="text" class="WAATKTextField" name="RegFax" id="RegFax" value="" size="32" /></td>
</tr>
<tr>
<th>RegEmail:</th>
<td><input type="text" class="WAATKTextField" name="RegEmail" id="RegEmail" value="" size="32" /></td>
</tr>
<tr>
<th>RegNotes:</th>
<td><input type="text" class="WAATKTextField" name="RegNotes" id="RegNotes" value="" size="32" /></td>
</tr>
</table>
<div class="WAATKButtonRow">
<input type="image" hspace="0" vspace="0" border="0" name="Register" id="Register" value="Register" alt="Register" src="WA_SecurityAssist/images/Pacifica/Refined_register.gif" />
<input type="hidden" name="MM_insert" value="WAATKRegistrationForm">
</div>
</form>
</div>

</body>
</html>

------------------------------------------------------------------------------------------------------
Once again thanks, and I really do appreciate your support. I also really thought this would be a little easier.
- When I am trying to do is have my client register, login to their profile ( updated it if needed), then be able to have someone come to my site and search my database of client by catagory and zipcode (displaying there selected results).

Sign in to reply to this post

Eric Mittman

When you get to the password page it is because the login failed. I'm not sure why you are failing the login though. If you can please post back with a copy of your login page, the password page, the registration page and your WA_SecurityAssist folder in a zip archive attached to your response. Also, include an export of your db. I will use your files and info to check into this further.

When you are getting sent to the password page what do you see up in the URL?

Sign in to reply to this post

ljh042258121730

Security Assist

I have attached the files. THanks for your support>

Sign in to reply to this post

Eric Mittman

Thanks for the files and info. The problem is how you have configured the login. Currently you are comparing the username and password that are entered to the user's id. You should instead be comparing the username to the username or email address value and the password should be compared to the password column.

To make this change edit the authenticate user server behavior on the login page and in step 2 of 3 update the columns that you are comparing to the username and password fields.

Sign in to reply to this post
loading

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now.  Build a store, a gallery, or a web-based email solution.

Want your website pre-built and hosted?

Close Windowclose

Rate your experience or provide feedback on this page

Account or customer service questions?
Please user our contact form.

Need technical support?
Please visit support to ask a question

Content

rating

Layout

rating

Ease of use

rating

security code refresh image

We do not respond to comments submitted from this page directly, but we do read and analyze any feedback and will use it to help make your experience better in the future.

Close Windowclose

We were unable to retrieve the attached file

Close Windowclose

Attach and remove files

add attachmentAdd attachment
Close Windowclose

Enter the URL you would like to link to in your post

Close Windowclose

This is how you use right click RTF editing

Enable right click RTF editing option allows you to add html markup into your tutorial such as images, bulleted lists, files and more...

-- click to close --

Uploading file...